CVE-2026-35368 vulnerabilities

Vulnerabilities for packages: uutils...

CVE-2026-35368

creationtimestamp| type| source ---|---|--- 2026-04-22 19:03:51+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mk46smokds2l 2026-04-22 19:23:16+00:00| seen| Telegram/y1XO5mBm2flLcrjS5YpFLtlumq47M984z8tJCHSwnxFgvg 2026-04-29 16:48:01+00:00| seen|...

UBUNTU-CVE-2026-35368

A vulnerability exists in the chroot utility of uutils coreutils when using the --userspec option. The utility resolves the user specification via getpwnam after entering the chroot but before dropping root privileges. On glibc-based systems, this can trigger the Name Service Switch NSS to load...

CVE-2026-35368

A vulnerability exists in the chroot utility of uutils coreutils when using the --userspec option. The utility resolves the user specification via getpwnam after entering the chroot but before dropping root privileges. On glibc-based systems, this can trigger the Name Service Switch NSS to load...

Linux Distros Unpatched Vulnerability : CVE-2026-35368

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability exists in the chroot utility of uutils coreutils when using the --userspec option. The utility resolves the user specification via getpwnam afte...

Linux Distros Unpatched Vulnerability : CVE-2021-35368

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OWASP ModSecurity Core Rule Set 3.1.x before 3.1.2, 3.2.x before 3.2.1, and 3.3.x before 3.3.2 is affected by a Request Body Bypass via a trailing pathname...

MAL-2025-35368 Malicious code in test-mlw2-fount-await (npm)

The package test-mlw2-fount-await was found to contain malicious code...

SUSE SLES15 Security Update : ffmpeg-4 (SUSE-SU-2025:1128-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:1128-1 advisory. - CVE-2020-22037: Fixed unchecked return value of the initvlc function bsc1186756 - CVE-2024-12361: Fixed null pointer dereference...

SUSE-SU-2025:1128-1 Security update for ffmpeg-4

This update for ffmpeg-4 fixes the following issues: - CVE-2020-22037: Fixed unchecked return value of the initvlc function bsc1186756...

Security update for ffmpeg-4

This update for ffmpeg-4 fixes the following issues: CVE-2025-22921: Fixed segmentation violation in NULL pointer dereference via the component /libavcodec/jpeg2000dec.c bsc1237382. CVE-2025-25473: Fixed memory leak in avformatfreecontext bsc1237351. CVE-2025-0518: Fixed unchecked sscanf return...

Mageia: Security Advisory (MGASA-2025-0087)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Updated ffmpeg packages fix security vulnerability

FFmpeg n7.0 is affected by a Double Free via the rkmppretrieveframe function within libavcodec/rkmppdec.c. CVE-2024-35368...

Linux Distros Unpatched Vulnerability : CVE-2024-35368

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FFmpeg n7.0 is affected by a Double Free via the rkmppretrieveframe function within libavcodec/rkmppdec.c. CVE-2024-35368 Note that Nessus relies on the presenc...

ffmpeg-7-7.1-4.1 on GA media (moderate)

ffmpeg-7-7.1-4.1 on GA media Announcement ID: openSUSE-SU-2025:14850-1 Rating: moderate Cross-References: CVE-2024-35368 CVSS scores: CVE-2024-35368 SUSE : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVE-2024-35368 SUSE : 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N...

CVE-2023-35368

creationtimestamp| type| source ---|---|--- 2025-02-27 21:26:14+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/5805...

Debian: Security Advisory (DLA-4039-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

DEBIAN-CVE-2024-35368

FFmpeg n7.0 is affected by a Double Free via the rkmppretrieveframe function within libavcodec/rkmppdec.c...

UBUNTU-CVE-2024-35368

FFmpeg n7.0 is affected by a Double Free via the rkmppretrieveframe function within libavcodec/rkmppdec.c...

CVE-2024-35368

FFmpeg n7.0 is affected by a Double Free via the rkmppretrieveframe function within libavcodec/rkmppdec.c...

CVE-2024-35368

creationtimestamp| type| source ---|---|--- 2024-11-29 19:58:30+00:00| seen| https://infosec.exchange/users/cve/statuses/113568010068124760 2024-11-30 14:04:34+00:00| seen| https://t.me/cvedetector/11691 2025-05-05 19:43:30+00:00| seen|...